I thought Trump said the war was won??

"US military to send Marines and more warships to Middle East, reports say"

#Oil #USA #Economy #Finance #Technology #Security #Inflation #News #Iran #Israel #War

https://www.wsj.com/livecoverage/us-israel-iran-war-news-2026/card/pentagon-sends-marine-expeditionary-unit-to-middle-east-WeoODg0XIIe31W3np2aI

Important research and documentation that businesses that profit from consumer data collection are lobbying governments to mandate age verification:

"Meta Platforms: Lobbying, Dark Money, and the App Store Accountability Act
An open-source intelligence investigation into how Meta Platforms built a multi-channel influence operation to pass age verification laws that shift regulatory burden from social media platforms onto Apple and Google's app stores."

https://github.com/upper-up/meta-lobbying-and-other-findings

#osint #privacy #opensource #lobbying #ageverificationlaw #security

> "The development comes days after TikTok said it does not plan to introduce E2EE to secure direct messages on the platform, telling BBC News that the technology makes users less safe and that it wants to protect users, especially young people, from harm."

Translation: We can't spy on you and confirm that you're not doing something illegal.

https://thehackernews.com/2026/03/meta-to-shut-down-instagram-end-to-end.html

#privacy #security #cryptogarphy

🟠 CVE-2026-31917 - High (8.5)

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in weDevs WP ERP erp allows SQL Injection.This issue affects WP ERP: from n/a through <= 1.16.10.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31917/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🟠 CVE-2026-31899 - High (7.5)

CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to Kozea/CairoSVG has exponential denial of service via recursive element amplification in cairosvg/defs.py. This causes CPU exhaustion from a small input.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31899/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🟠 CVE-2026-31944 - High (7.6)

LibreChat is a ChatGPT clone with additional features. From 0.8.2 to 0.8.2-rc3, The MCP (Model Context Protocol) OAuth callback endpoint accepts the redirect from the identity provider and stores OAuth tokens for the user who initiated the flow, w...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31944/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

FBI seeks victims of Steam games used to spread malware

https://fed.brid.gy/r/https://www.bleepingcomputer.com/news/security/fbi-seeks-victims-of-steam-games-used-to-spread-malware/

🟠 CVE-2026-31922 - High (8.5)

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ays Pro Fox LMS fox-lms allows Blind SQL Injection.This issue affects Fox LMS: from n/a through <= 1.0.6.3.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-31922/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🔴 CVE-2026-32304 - Critical (9.8)

Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Prior to 3.0.14, the create_function(args, code) function passes both parameters directly to the Function constructor without any sanitization, allowing ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32304/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🟠 CVE-2026-32302 - High (8.1)

OpenClaw is a personal AI assistant. Prior to 2026.3.11, browser-originated WebSocket connections could bypass origin validation when gateway.auth.mode was set to trusted-proxy and the request arrived with proxy headers. A page served from an untr...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-32302/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack